Chrome Extension Stealing Private Keys from Crypto Wallets

Shitcoin Wallet, a Google Chrome extension, was caught injecting JavaScript code on web pages to steal passwords from cryptocurrency wallets and cryptocurrency portals, according to Cointelegraph website.

The wallet is targeting the well-known websites such Binance and MyEtherWallet which involve users’ passwords.

Harry Denley, anti-phishing expert, warned against the potential breach, saying, “A browser crypto wallet is injecting malicious java script to steal secrets from MyEtherWallet, newtrackerio, Binance and SwitcheoNetwork.”


Some cryptojacking extensions were found on the Google Chrome web store last year. Cryptojacking, which occurs when a user’s computing device is secretly used to mine cryptocurrency, rose 29% in the first quarter of 2019, according to a report from McAfee Labs.

Share this page
Rabea Maguid 551 Articles
Rabea Maguid is a journalist completely obsessed with crypto industry. He holds B.A. from Al-Azhar University, and has a background in journalism and economics. Rabea Maguid likes to think about the future in a positive way, and sees blockchain as a potential driver of deep societal change.